CVE-2010-4802

NONE EPSS 79.2%
Published May 3, 201115y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 3, 2011 15y ago
Last Modified Jun 16, 2026 2w ago

Description

Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.

Threat Intelligence

EPSS Exploit Probability
79.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 59

VendorProductVersionRange
mojoliciousmojolicious* ≤0.999927
mojoliciousmojolicious0.2any
mojoliciousmojolicious0.3any
mojoliciousmojolicious0.4any
mojoliciousmojolicious0.5any
mojoliciousmojolicious0.6any
mojoliciousmojolicious0.7any
mojoliciousmojolicious0.8any
mojoliciousmojolicious0.8.1any
mojoliciousmojolicious0.8.2any
mojoliciousmojolicious0.8.3any
mojoliciousmojolicious0.8.4any
mojoliciousmojolicious0.8.5any
mojoliciousmojolicious0.9any
mojoliciousmojolicious0.8006any
mojoliciousmojolicious0.8007any
mojoliciousmojolicious0.8008any
mojoliciousmojolicious0.8009any
mojoliciousmojolicious0.9001any
mojoliciousmojolicious0.9002any
mojoliciousmojolicious0.991231any
mojoliciousmojolicious0.991232any
mojoliciousmojolicious0.991233any
mojoliciousmojolicious0.991234any
mojoliciousmojolicious0.991235any
mojoliciousmojolicious0.991236any
mojoliciousmojolicious0.991237any
mojoliciousmojolicious0.991238any
mojoliciousmojolicious0.991239any
mojoliciousmojolicious0.991240any
mojoliciousmojolicious0.991241any
mojoliciousmojolicious0.991242any
mojoliciousmojolicious0.991243any
mojoliciousmojolicious0.991244any
mojoliciousmojolicious0.991245any
mojoliciousmojolicious0.991246any
mojoliciousmojolicious0.991250any
mojoliciousmojolicious0.991251any
mojoliciousmojolicious0.999901any
mojoliciousmojolicious0.999902any
mojoliciousmojolicious0.999903any
mojoliciousmojolicious0.999904any
mojoliciousmojolicious0.999905any
mojoliciousmojolicious0.999906any
mojoliciousmojolicious0.999907any
mojoliciousmojolicious0.999908any
mojoliciousmojolicious0.999909any
mojoliciousmojolicious0.999910any
mojoliciousmojolicious0.999911any
mojoliciousmojolicious0.999912any
mojoliciousmojolicious0.999913any
mojoliciousmojolicious0.999914any
mojoliciousmojolicious0.999920any
mojoliciousmojolicious0.999921any
mojoliciousmojolicious0.999922any
mojoliciousmojolicious0.999923any
mojoliciousmojolicious0.999924any
mojoliciousmojolicious0.999925any
mojoliciousmojolicious0.999926any

References 5

  • bugs.debian.org http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622952
    Patch
  • cpansearch.perl.org http://cpansearch.perl.org/src/KRAIH/Mojolicious-1.20/Changes
  • debian.org http://www.debian.org/security/2011/dsa-2239
  • github.com https://github.com/kraih/mojo/commit/aa7c8da54b1ebd4ccb64aa66dede7b7cdb381c44
    Patch
  • github.com https://github.com/kraih/mojo/commit/b3a1fb453eda447c0bb082cd9eed81bb75a7564a
    Patch

Remediation

  • bugs.debian.org http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622952
    Patch
  • github.com https://github.com/kraih/mojo/commit/aa7c8da54b1ebd4ccb64aa66dede7b7cdb381c44
    Patch
  • github.com https://github.com/kraih/mojo/commit/b3a1fb453eda447c0bb082cd9eed81bb75a7564a
    Patch